e4c31b5a3c644725a1d10b4a72af14788595a5a5608887008e7b90e60b2b854a | Triage

Sharing

Copy URL Twitter E-mail

General

Target

278efefbf14088de50f2d91e0b0a1c15_JaffaCakes118
Size

258KB
Sample

241009-ajp24asbpr
MD5

278efefbf14088de50f2d91e0b0a1c15
SHA1

46daf87f41392f236b69d4b801a0062cf979bcbe
SHA256

e4c31b5a3c644725a1d10b4a72af14788595a5a5608887008e7b90e60b2b854a
SHA512

d932a455ac9b4b7753b6ec66c5eb68733f1d09d1e14c9736f7cf2d65ccc291106f2c263081196df09570fcc8b47e31c28c33a5b3a11c108a2882dde75a88b06e
SSDEEP

6144:f1e7/Z/WpcAzuRZuvSVfbw7F6byKMjz26g4BRUQ+YxwVn/sy9wjOE:f14xkcACnuq9b7MjzSsz+YxwV/L6jn

Score

8^/10

discovery persistence

Malware Config

Targets

- Target
  
  2.exe
- Size
  
  259KB
- MD5
  
  d203a131e6bc82c3a030bd1aba259ac1
- SHA1
  
  8b6c84b3edab821ce0af78daaab927d08fb370f8
- SHA256
  
  0284127636739637c3ed4503f72917511382c3558dc6df43192e47c5625355f7
- SHA512
  
  7c5bcc304529ef4ff527016f0a5ba2799cc5d066e086836fb545dad1684e76d7d02ae213868ebba891a76e790455a8d1be6df3f4f3a32d384f30ae2add0cf3f5
- SSDEEP
  
  6144:U7WlQhWFAI3xRvuvS5fbw7FqbyKMuz26t4BRUQ+KxwYo/sy9wfOX:ukFAi5uqpbdMuzHsz+KxwB/L6fy
Score

8^/10

discovery persistence
- Boot or Logon Autostart Execution: Active Setup
  Adversaries may achieve persistence by adding a Registry key to the Active Setup of the local machine.
  persistence
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Active Setup

Privilege Escalation

Boot or Logon Autostart Execution

Active Setup

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence